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REMARKS 

By this Amendment, claims 1-4 , 8-9, 12, 14, 16, 18 and 20 are amended to merely 
clarify the recited subject matter and claims 6-7, 13 and 15 are cancelled without prejudice or 
disclaimer. Claims 1-5, 8-12 , 14 and 16-20 are pending. 

The Office Action rejected claims 1-8, 10 and 12-15 under 35 U.S.C. 102(e) as being 
anticipated by Freund (U.S. Pat. Pub. 2003/0167405), rejected claims 9, 16, 17 and 19 under 
35 U.S.C. 103(a) as being unpatentable over Freund in view of Schneier (U.S. Pat. Pub. 
2002/0087882) and rejected claims 1 1, 18 and 20 under 35 U.S.C. 103(a) as being 
unpatentable over Freund in view of Sheikh (U.S. Pat. Pub. 2002/0078382). 

Applicant traverses the rejections because Freund, analyzed individually or in 
combination with Sheikh, fails to teach or suggest the claimed invention including selection, 
by said personal firewall a predetermined network element that should be available for 
verification from the current location determined based on the IP address currently used by 
the client computer, the predetermined network element being able to respond only if the 
client computer is located in the network in which it is assumed to be based on the current IP 
address, the transmission, by the personal firewall, to the selected predetermined network 
element a request to send a response with some data proving an identity of the selected 
predetermined network element, and, either, automatically selection, by the personal firewall, 
one of the sets of security rules by the personal firewall according to the current location of 
the client computer, if the selected predetermined network element sends a response with the 
required identity data to the personal firewall and thereby verifies the current location 
determined based on the IP address currently used by the client computer, or determination of 
the current location unverified and selecting a default set of security rules by the personal 
firewall, if the personal firewall fails to receive from the selected predetermined network 
element a response with the required identity data which verifies the current location 
determined based on the IP address currently used by the client computer, as recited in each 
of the independent claims. 

Rather, Freund merely teaches use of an Operating System (OS) network information 
Application Programming Interface (API) for determining whether a network adapter (such 
as a modem, a network interface card, etc.) has been added to removed from the client device, 
or that such an adapter's network configuration has changed. In other words, the network is 
detected based on the network configuration information from a network adapter of a client 
device. 
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However, Freund fails to teach or suggest first determining, by a personal firewall, a 
current location of a client computer based on an IP address currently used by the client 
computer, and then verifying the determined location by a request-response procedure with a 
predetermined network element selected based on the current IP address, prior to selecting 
security rules for that network. 

Schneier fails to remedy these deficiencies of Freund because Schneier merely 
discloses a probe attached to a customer's network that collects status data and other audit 
information from monitored components of the network, looking for footprints or evidence of 
unauthorized intrusions or attacks and filters and analyzes the collected data to identify 
potentially security-related events happening on the network. 

Sheikh fails to remedy these deficiencies of Freund and Schneier because Sheikh 
merely discloses a security software methodology and system that monitors configuration 
changes made to information systems within a network., which include applications including 
web servers, firewalls, proxy servers, log servers, intrusion detection software systems, 
routers and any other device or application which can be considered a part of the enterprise 
information system infrastructure. 

Thus, the subject matter of the independent claims 1, 12, 14, 16, 18 and 20 is 
patentable over the teachings of Freund, Schneier and Sheikh. 

All objections and rejections having been addressed, Applicant's request issuance of a 
Notice of Allowance indicating the allowability of all pending claims. However, if anything 
further is necessary to place the application in condition for allowance, Applicant requests 
that the Examiner telephone Applicant's undersigned representative at the number listed 
below. 
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Please charge any fees associated with the submission of this paper to Deposit 
Account Number 033975. The Commissioner for Patents is also authorized to credit any 
over payments to the above-referenced Deposit Account. 

Respectfully submitted, 

PILLSHURY WINTHROP SHAW PITTMAN LLP 




CHRISTINE W. MCCARTHY 
Reg. No. 418' 
Tel. No. 703 770.7743 
Fax No. 703 770.7901 



Date: December 8, 2005 
P.O. Box 10500 
McLean, V A 22102 
(703) 905-2000 
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